$ rpki-client -vvf rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft File: qZ9mmGknIBFUlstFlwLEOtxI1q0.mft (raw, json) Hash identifier: b0ggmwzcjubkP19pAHhS/GwfRgtBGUpEJICgU+aT6E4= Subject key identifier: B4:83:72:A3:EE:39:19:1F:FE:77:55:6B:1B:2A:1A:44:7A:1B:40:3D Authority key identifier: A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD Certificate issuer: /CN=A91CACCA/serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft Manifest number: 34AF Signing time: Fri 22 Aug 2025 15:17:53 +0000 Manifest this update: Fri 22 Aug 2025 15:17:52 +0000 Manifest next update: Fri 29 Aug 2025 15:17:52 +0000 Files and hashes: 1: qZ9mmGknIBFUlstFlwLEOtxI1q0.crl (hash: QmMhCscqeHKkcXdK859BdxkwtSFKsGGanyz3WF52nH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CACCA, serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Validity Not Before: Aug 22 15:17:52 2025 GMT Not After : Aug 29 15:17:52 2025 GMT Subject: CN=68a88a21-f860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2c:ce:93:d8:61:04:9c:f6:2a:4b:80:44:34: 41:49:cc:be:e0:c5:cd:6d:48:5d:2a:86:30:24:14: 27:cb:02:1c:75:a4:c8:61:8a:a5:91:ba:5e:50:d3: 7b:24:d0:ba:de:dd:23:e1:ea:7f:79:fc:84:0b:02: d2:a8:13:65:6a:1f:91:b2:a8:83:2c:5c:6a:e7:56: 3d:27:0b:15:2f:4f:f5:99:43:0a:79:79:45:d8:d1: e7:ea:74:17:f8:30:3b:69:f3:4b:17:48:9a:eb:53: 58:67:2a:f6:9e:23:f5:c1:72:51:a4:89:f4:45:c9: 4a:84:fa:1e:29:54:48:9f:12:5a:5f:05:a9:5f:b2: b1:10:4d:09:c0:fc:31:8f:c8:ec:af:87:75:65:4c: a4:c0:82:fb:09:b4:ab:f4:09:b7:96:f3:f6:de:15: 69:7d:a3:08:b0:86:7e:38:9b:2a:08:ab:05:88:af: e1:b2:74:63:07:87:19:94:56:21:bb:2c:a6:1b:79: c9:3c:4a:58:3c:36:fc:b7:2f:23:70:6c:2e:0a:3f: 39:6b:f5:cb:80:24:15:47:2b:94:fc:7d:20:65:ff: 7e:05:71:49:2c:07:39:6b:31:51:cd:10:c8:ed:d6: 12:97:8c:62:65:cc:9f:e8:8f:51:b7:4c:d4:95:6c: d5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:83:72:A3:EE:39:19:1F:FE:77:55:6B:1B:2A:1A:44:7A:1B:40:3D X509v3 Authority Key Identifier: keyid:A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:f9:af:c5:c0:a7:7e:ec:44:d4:e5:04:db:a7:f0:11:93:3c: f0:28:86:aa:07:7c:da:bb:24:44:b2:22:53:7d:65:5d:2c:3c: 6e:89:65:69:4a:07:ef:c2:3a:00:b0:d2:7c:84:b7:86:25:8e: 44:2d:78:ce:3b:08:b2:4c:71:37:c3:54:54:f0:d0:82:0b:60: 93:03:5f:bb:3a:e1:40:a1:10:a7:d5:21:26:15:e4:79:7c:44: ff:ff:b2:3c:a4:5b:7d:c9:98:7f:d4:13:05:20:c8:e5:d5:ba: 83:5c:cf:b3:5d:1f:04:32:8d:79:f4:10:70:df:8a:81:af:da: e7:5b:3b:ae:cb:5e:d5:c9:a7:3a:1f:ac:5a:ef:31:f7:69:cd: 76:16:91:87:c5:79:b2:91:2d:2f:80:a3:c2:90:e5:10:5f:34: f5:7b:86:90:95:41:12:f9:a9:8c:d5:4a:de:d9:30:c6:ac:1c: 9d:71:ed:71:38:3c:d2:39:41:5b:6b:29:e8:43:7f:bf:e1:42: 02:b5:28:92:06:23:07:b4:4b:c1:1e:05:37:19:97:ff:c5:88: 95:cf:e5:e1:eb:8b:a8:7b:03:f8:b5:c8:d9:ef:49:5e:3e:13: 17:a8:63:4d:db:e4:1c:17:3b:05:a7:57:17:0e:bd:83:57:bb: df:22:69:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FDQ0ExMTAvBgNVBAUTKEE5OUY2Njk4NjkyNzIwMTE1NDk2Q0I0NTk3MDJDNDNB REM0OEQ2QUQwHhcNMjUwODIyMTUxNzUyWhcNMjUwODI5MTUxNzUyWjAYMRYwFAYD VQQDEw02OGE4OGEyMS1mODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyzOk9hhBJz2KkuARDRBScy+4MXNbUhdKoYwJBQnywIcdaTIYYqlkbpeUNN7 JNC63t0j4ep/efyECwLSqBNlah+RsqiDLFxq51Y9JwsVL0/1mUMKeXlF2NHn6nQX +DA7afNLF0ia61NYZyr2niP1wXJRpIn0RclKhPoeKVRInxJaXwWpX7KxEE0JwPwx j8jsr4d1ZUykwIL7CbSr9Am3lvP23hVpfaMIsIZ+OJsqCKsFiK/hsnRjB4cZlFYh uyymG3nJPEpYPDb8ty8jcGwuCj85a/XLgCQVRyuU/H0gZf9+BXFJLAc5azFRzRDI 7dYSl4xiZcyf6I9Rt0zUlWzVYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSDcqPu ORkf/ndVaxsqGkR6G0A9MB8GA1UdIwQYMBaAFKmfZphpJyARVJbLRZcCxDrcSNat MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUNDQS82MDg2RDc4MjFE QTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklCRlVsc3RGbHdMRU90eEkx cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaOW1tR2tuSUJGVWxzdEZsd0xFT3R4STFxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUNDQS82MDg2RDc4MjFEQTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklC RlVsc3RGbHdMRU90eEkxcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx+a/FwKd+7ETU5QTbp/ARkzzwKIaqB3zauyREsiJTfWVdLDxuiWVp SgfvwjoAsNJ8hLeGJY5ELXjOOwiyTHE3w1RU8NCCC2CTA1+7OuFAoRCn1SEmFeR5 fET//7I8pFt9yZh/1BMFIMjl1bqDXM+zXR8EMo159BBw34qBr9rnWzuuy17Vyac6 H6xa7zH3ac12FpGHxXmykS0vgKPCkOUQXzT1e4aQlUES+amM1Ure2TDGrBydce1x ODzSOUFbaynoQ3+/4UICtSiSBiMHtEvBHgU3GZf/xYiVz+Xh64uoewP4tcjZ70le PhMXqGNN2+QcFzsFp1cXDr2DV7vfImka -----END CERTIFICATE-----Generated at Sat Aug 23 17:05:50 2025 by rpki-client